package com.qk.filter;

import com.qk.common.JwtUtils;
import com.qk.utils.CurrentUserHoler;
import io.jsonwebtoken.Claims;
import jakarta.servlet.*;
import jakarta.servlet.annotation.WebFilter;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import lombok.extern.slf4j.Slf4j;

import java.io.IOException;

@Slf4j
@WebFilter(urlPatterns = "/*")
public class TokenFilter implements Filter {

    @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        HttpServletRequest request = (HttpServletRequest) servletRequest;
        HttpServletResponse response = (HttpServletResponse) servletResponse;
        //1．获取请求路径
        String url = request.getRequestURI();
        //2．判定是否是登录请求，如果是，放行
       if(url.contains("/login")){
           log.info("登录请求: {},放行", url);
           filterChain.doFilter(request,response);
           return;
       }
        //3．获取请求头 token
        String jwt = request.getHeader("token");

        //4。判断token是否存在，如果不存在，响应401状态码
        if(jwt == null || jwt.isEmpty()){
            log.info("请求头token不存在");
            response.setStatus(401);
            return;
        }
        //5．解析令牌，如果解析令牌报错，响应401状态码
         try{
            Claims claims =  JwtUtils.parseToken(jwt);
            Integer userId = claims.get("id",Integer.class);
            log.info("当前用户ID,存入ThreadLocal");
             CurrentUserHoler.setCurrentUser(userId);
         } catch (Exception e) {
             log.info("令牌解析失败");
             response.setStatus(401);
             return;
         }
        //6．放行
        log.info("放行");
        filterChain.doFilter(request,response);

        //7.释放资源
        log.info("删除ThreadLocal中的登录用户信息");
        CurrentUserHoler.removeCurrentUser();

    }
}
